Senior Analyst, Supplier Risk Monitoring
Who we are
SoFi is a digital personal finance company whose mission is to help its members achieve financial independence to realize their ambitions, whether that be to buy a house one day, start a family on their own terms or be debt free. We aim to be at the center of our members’ financial lives, and to help every member Get Their Money Right®. By joining SoFi, you’ll become part of a forward-thinking company that is transforming financial services by embracing technology to build innovative loan products, investment tools, and more. One of the fastest growing fintech companies, we’ve grown from 250 employees in 2015 to over 1,500 employees today, and are well on our way to reaching 1 million members. With offices across the US, we offer the excitement of a rapidly growing startup with the stability of a seasoned management team and some of the best talent around. As an employer, we strive to hire employees who are committed to both our company’s mission and our desire to build the best culture in the world. If you are driven, passionate about what you do, and excited about the SoFi mission, we would love to hear from you.
SoFi's Risk Management team has responsibility for ensuring growth in lending and other member related activities are consistent with the company's risk appetite. The team holistically manages enterprise, credit, deposit products, fraud prevention, portfolio management, infrastructure, and business operating risks. In addition, Risk Management directly manages enterprise partners, ensures strong compliance with regulations, acts as a multi-layered second line of defense in oversight of business operations, and works to ensure risk policies enable a member-first experience.
The role of Senior Analyst, Supplier Risk Monitoring will be responsible for partnering with SoFi Business Units (Lending + Money/Invest/Credit Card + Enterprise Content and Insights), bank, key functional partners (Finance, Operations, Information Security, Privacy, Legal, Compliance) and external suppliers and service providers to lead the ongoing monitoring and control activities of the Supplier Risk Management Program and facilitate the Supplier onboarding process.
Key oversight support domains include:
Facilitation of third party risk assessments for initial due diligence and ongoing oversight of third party supplier services, including the analysis and review of audit control reports (i.e. SSAE18, SOC Reports, and PCI) to ensure compliance with laws and regulations
Define, measure and monitor progress of Supplier Risk Management activities (Issue Tracking, Risk Remediation Efforts, Key Supplier Metrics)
Partner with Senior Management to identify risk exposure in alignment with Supplier Risk strategic initiatives
Provide risk awareness and training to colleagues in support of SoFi's Supplier Risk Management policies and procedures
Create reporting materials detailing program activities, supplier metrics and issue remediation actions for various executive management committees on a monthly and quarterly basis
Manage the supplier lifecycle (including supplier approvals and terminations), investor audits and lead cross functional communication forums
Responsible for the development and compilation of Key Risk Indicators (KRIs) and risk metrics
What you’ll do:
Innovate... Bring your brightest ideas to ensure risk is being managed in alignment with regulatory guidance and best practice throughout third party life cycle (planning, due diligence, contract, on-going monitoring, and termination)
Make Data Driven Decisions… Design and conduct supplier risk assessments, develop tier/relationship based mitigation strategies and evaluate remediation tracking
Leave your Mark… Management of Supplier Approvals, documentation and communication of Program metrics and assessment results clearly and concisely
Provide Effective Challenge… Lead operating process and internal control improvement by reviewing, monitoring and testing internal controls and procedures associated with products, services, customers and operations
Collaborate… Build effective relationships with stakeholders who own and support key third party relationships; gain commitment from stakeholders to help manage and improve SoFi’s risk posture by understanding business objectives to influence solution strategies
Be a Risk SME… Work in a self-directed, collaborative, and constructive manner with business units and our internal and external stakeholders to enhance the effectiveness of processes and controls
Drive Performance Outcomes... Monitor the risk and control environment to ensure that exposures are kept at acceptable levels through issue monitoring administration and exception tracking and the oversight of remediation actions to improve overall Supplier performance
What you’ll need:
Minimum of six years of third party risk management experience in the financial services industry conducting risk or compliance assessments
Comprehensive knowledge of Supplier risk management methodologies, risk mitigation principles and compliance laws and regulatory expectations
Knowledge of and experience in designing and operating third party risk management governance frameworks and processes to comply with regulatory requirements, guidance and oversight (OCC 2013-29, Fed SR 13-19 or other relevant third party risk regulations applicable to the financial services industry)
Ability to provide consult, insight and guidance in consideration of business need and third party risk management strategic objectives
Why you’ll love working here
Competitive salary packages and bonuses
Comprehensive medical, dental, vision and life insurance benefits
Generous vacation and holidays
Paid parental leave for eligible employees
401(k) and education on retirement planning
Tuition reimbursement on approved programs
Monthly contribution up to $200 to help you pay off your student loans
Great health & well-being benefits including: telehealth parental support, subsidized gym program
Employer paid lunch program (except for remote employees)
Fully stocked kitchen (snacks and drinks)
SoFi does not seek salary history information from job applicants.
SoFi provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law.